Security Advisory

CVE-2022-3846

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-05 16:51:48

Last updated 2025-04-23 14:57:12

Assigner WPScan

State PUBLISHED

Description

The Workreap WordPress theme before 2.6.3 has a vulnerability with the notifications feature as its possible to read any users notification (employer or freelancer) as the notification ID is brute-forceable.

← Browse all CVEs View on cve.org ↗